The ALG must restrict the ability of individuals to use information systems to launch organization-defined Denial of Service (DoS) attacks against other information systems.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000192-ALG-000121	SRG-NET-000192-ALG-000121	SRG-NET-000192-ALG-000121_rule		Medium

Description
The ALG must prevent individuals from using it as a platform for launching a denial of service attack. Restricting the ability of individuals to launch denial of service attacks requires that the mechanisms used for such attacks be disabled or restricted. This control requires policy filters to look for content within a packet that may be used to launch denial of service attacks against other systems or the network.

Description

The ALG must prevent individuals from using it as a platform for launching a denial of service attack. Restricting the ability of individuals to launch denial of service attacks requires that the mechanisms used for such attacks be disabled or restricted. This control requires policy filters to look for content within a packet that may be used to launch denial of service attacks against other systems or the network.

STIG	Date
Application Layer Gateway Security Requirements Guide	2014-06-27

Details

Check Text ( C-SRG-NET-000192-ALG-000121_chk )
Verify the ALG restricts the ability of individuals to use information systems to launch organization-defined Denial of Service (DoS) attacks against other information systems. If the ALG does not restrict the ability of individuals to use information systems to launch organization-defined Denial of Service (DoS) attacks against other information systems, this is a finding.

Fix Text (F-SRG-NET-000192-ALG-000121_fix)
Configure the ALG to restrict the ability of individuals to use information systems to launch organization-defined Denial of Service (DoS) attacks against other information systems.